CVE-2009-3881

Table of Contents

530173:
CVE-2009-3881 OpenJDK resurrected classloaders can still have children (6636650)

The MITRE CVE dictionary describes this issue as:

Sun Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, does not prevent the existence of children of a resurrected ClassLoader, which allows remote attackers to gain privileges via unspecified vectors, related to an "information leak vulnerability," aka Bug Id 6636650.